Open
Cached
·
just now
17
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Consider adding Permissions-Policy to control browser features
Performance Headers
1 headers
Connection
Performance
close
Caching Headers
2 headers
Cache-Control
Caching
max-age=0, private, must-revalidate
Etag
Caching
W/"23936490f999f3feb4d3ee7f542bcb39"
Content Headers
2 headers
Content-Length
Content
7908
Content-Type
Content
text/html; charset=utf-8
Server Headers
2 headers
Server
Server
nginx/1.18.0 (Ubuntu)
X-Runtime
Server
0.017116
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
_datacenter_session=1XR4C7aSoB9Jz86nsPmi48fDs8P36%2BdeEg1CUXxnsDzMfmEa%2BZ347dBr0F3aF4qcbxZ6ZsDNcOn1Qd5%2F%2BICGinH%2Fh%2BgppFvEelu8pqdLKNphM7UtCv2KhmmH6SRg4ng1aR%2F3Yu65Z0iNFaMbMrYeksbxq29kinp91cAONr9rLNN4MecCr61oyIyzalGP9eDmA3HKAn1Bg4VkQLyHQE92Mx45BUssIuhD9xY4XxjaS8pRGjWTdnSZP3jrfmNPgUTOuYi3ywjkIEuj%2BrpMROiReV%2FB0%2BiJb8c9Ak16--q%2BWaOtDjMkWA%2F5n8--Cj39uK84b9x6N3hhkHN6yw%3D%3D; path=/; HttpOnly; SameSite=Lax
Other Headers
5 headers
Date
Other
Mon, 08 Dec 2025 09:11:48 GMT
Link
Other
</assets/application-54315fa7ac808878f253a5459bcc62310542b7983857a92e653756bb848b71f0.css>; rel=preload; as=style; nopush,</assets/es-module-shims.min-d89e73202ec09dede55fb74115af9c5f9f2bb965433de1c2446e1faa6dac2470.js>; rel=preload; as=script; nopush
X-Download-Options
Other
noopen
X-Permitted-Cross-Domain-Policies
Other
none
X-Request-Id
Other
24b732e2-0da3-4f94-895f-03fe9401820c
Recommendations
Enable compression (gzip/brotli) to improve performance
Analysis completed in 1740ms